$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3136323a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a3136323a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: PWcu8n1GQVYIbIpIIeTmS8WPhGjRtUMxtKVHKNkmcLA= Subject key identifier: 24:3B:C2:52:99:82:7B:A4:82:8E:A3:A3:9A:C8:DB:40:8A:5E:07:ED Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 3AA1462C0F3D1F96D7E690525575AC0EB57568BB Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3136323a3a2f34382d3438203d3e20313533303837.roa Signing time: Fri 09 Aug 2024 11:37:09 +0000 ROA not before: Fri 09 Aug 2024 11:32:09 +0000 ROA not after: Fri 08 Aug 2025 11:37:09 +0000 asID: 153087 IP address blocks: 2404:97c0:162::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 01:41:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:a1:46:2c:0f:3d:1f:96:d7:e6:90:52:55:75:ac:0e:b5:75:68:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Aug 9 11:32:09 2024 GMT Not After : Aug 8 11:37:09 2025 GMT Subject: CN=243BC25299827BA4828EA3A39AC8DB408A5E07ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ad:5f:8e:96:f1:df:64:9d:5a:c0:33:fe:54: 9f:4a:c0:9c:4f:da:4a:97:2c:4b:0e:74:18:b5:00: 1e:9f:98:ee:38:9a:b3:2c:60:46:a5:ae:a6:54:50: 7d:05:8d:d3:21:73:ad:c1:a2:b5:a5:e5:ba:4d:b4: bd:32:41:4b:fd:9e:5c:1c:91:f1:9c:85:3b:6c:03: 7d:2b:0f:cc:ff:c9:11:6c:cf:4d:61:29:53:32:80: 6e:14:08:59:01:c5:1b:15:74:f8:dc:97:7f:31:76: b6:14:3b:a6:13:09:c3:22:84:58:ce:bc:4f:16:25: f5:62:7b:fb:1b:83:49:41:41:18:23:20:be:56:8f: 47:b5:e1:94:69:2d:69:09:da:18:65:f5:57:99:61: 67:a5:5e:5a:b3:fc:75:3a:c6:a7:ab:1e:5e:7c:8c: 5d:87:eb:80:aa:f2:ce:1f:d8:c8:e1:c8:b7:d3:89: d6:c5:df:80:7f:56:85:b6:1d:5b:bd:2e:0d:03:7a: c3:96:b8:e3:d2:60:ad:2b:6b:80:1b:d4:15:0e:c5: a0:b5:49:3b:59:f6:7e:e0:7a:1c:fd:56:31:95:a1: d5:72:53:15:e9:79:91:5c:08:5e:89:ec:ba:c2:bc: 8a:68:c5:c9:70:19:b4:a0:1f:c6:80:bd:c9:ea:1b: e7:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:3B:C2:52:99:82:7B:A4:82:8E:A3:A3:9A:C8:DB:40:8A:5E:07:ED X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3136323a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:162::/48 Signature Algorithm: sha256WithRSAEncryption 7f:f5:9b:8d:36:7f:cb:3d:9c:0b:f1:2a:41:7f:b2:19:68:84: fe:0c:38:bb:78:c4:4f:c9:c3:ac:9c:cc:c7:8e:64:6f:e7:ab: cd:cf:72:46:09:e0:52:9e:a9:5a:dc:7f:89:f8:50:13:95:31: 13:cb:26:a2:eb:06:50:f1:53:35:1b:5c:69:4d:11:f5:fa:9b: b2:1f:bf:2c:b5:fe:e1:4d:e0:d1:dd:96:dc:43:f6:49:1e:31: 93:0c:b8:cd:b7:50:b4:77:c9:01:1f:8b:0c:a2:d3:77:1c:72: 4f:c1:b2:90:3e:60:ce:0e:fc:fd:07:2c:de:6c:4d:da:58:3e: 9e:89:05:61:03:17:e0:63:f2:46:76:af:20:ad:b9:26:ff:17: 12:36:0d:83:81:42:a8:89:4b:d9:74:b3:b2:38:bf:4d:bf:54: af:86:cc:29:d0:13:51:cf:b6:8b:98:54:07:cd:36:f1:05:3a: f4:55:dc:d1:98:50:84:d8:a0:ce:27:cf:7e:0e:1b:c3:1c:90: df:75:05:d7:a6:11:9b:ae:40:4d:7c:4b:de:90:c2:c6:65:b1: 0b:ea:36:e5:a2:c3:5a:08:ab:98:28:6d:01:79:ed:e6:c8:1c: 34:e5:a8:23:4d:d1:6b:65:de:f7:a9:dd:f2:fc:fd:e9:7e:5d: 0f:ef:32:44 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUOqFGLA89H5bX5pBSVXWsDrV1aLswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNDA4MDkxMTMyMDlaFw0yNTA4MDgxMTM3MDlaMDMxMTAvBgNV BAMTKDI0M0JDMjUyOTk4MjdCQTQ4MjhFQTNBMzlBQzhEQjQwOEE1RTA3RUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGrV+OlvHfZJ1awDP+VJ9KwJxP 2kqXLEsOdBi1AB6fmO44mrMsYEalrqZUUH0FjdMhc63BorWl5bpNtL0yQUv9nlwc kfGchTtsA30rD8z/yRFsz01hKVMygG4UCFkBxRsVdPjcl38xdrYUO6YTCcMihFjO vE8WJfVie/sbg0lBQRgjIL5Wj0e14ZRpLWkJ2hhl9VeZYWelXlqz/HU6xqerHl58 jF2H64Cq8s4f2MjhyLfTidbF34B/VoW2HVu9Lg0DesOWuOPSYK0ra4Ab1BUOxaC1 STtZ9n7gehz9VjGVodVyUxXpeZFcCF6J7LrCvIpoxclwGbSgH8aAvcnqG+c7AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUJDvCUpmCe6SCjqOjmsjbQIpeB+0wHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzNjMyM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASX wAFiMA0GCSqGSIb3DQEBCwUAA4IBAQB/9ZuNNn/LPZwL8SpBf7IZaIT+DDi7eMRP ycOsnMzHjmRv56vNz3JGCeBSnqla3H+J+FATlTETyyai6wZQ8VM1G1xpTRH1+puy H78stf7hTeDR3ZbcQ/ZJHjGTDLjNt1C0d8kBH4sMotN3HHJPwbKQPmDODvz9Byze bE3aWD6eiQVhAxfgY/JGdq8grbkm/xcSNg2DgUKoiUvZdLOyOL9Nv1Svhswp0BNR z7aLmFQHzTbxBTr0VdzRmFCE2KDOJ89+DhvDHJDfdQXXphGbrkBNfEvekMLGZbEL 6jblosNaCKuYKG0Bee3myBw05agjTdFrZd73qd3y/P3pfl0P7zJE -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org